Skip to content

Latest commit

 

History

History
95 lines (82 loc) · 2.77 KB

axt1800.md

File metadata and controls

95 lines (82 loc) · 2.77 KB

GL.iNet GL-AXT1800

cat ${OPENSHIFT_LAB_PATH}/ssh_key.pub | ssh [email protected] "cat >> /etc/dropbear/authorized_keys"

export EDGE_ROUTER=10.11.12.1
export EDGE_NETMASK=255.255.255.0
export LAB_DOMAIN=my.awesome.lab

WORK_DIR=$(mktemp -d)
cat << EOF > ${WORK_DIR}/uci.batch
set dropbear.@dropbear[0].PasswordAuth="off"
set dropbear.@dropbear[0].RootPasswordAuth="off"
set network.lan.ipaddr="${EDGE_ROUTER}"
set network.lan.netmask=${EDGE_NETMASK}
set network.lan.hostname=router.${LAB_DOMAIN}
set dhcp.lan.leasetime="5m"
set dhcp.lan.start="225"
set dhcp.lan.limit="30"
add_list dhcp.lan.dhcp_option="6,${EDGE_ROUTER}"
commit
EOF
scp -O -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -oHostKeyAlgorithms=+ssh-rsa -oPubkeyAcceptedAlgorithms=+ssh-rsa ${WORK_DIR}/uci.batch [email protected]:/tmp/uci.batch
ssh [email protected] "cat /tmp/uci.batch | uci batch ; \
  rm -rf /root/.ssh ; \
  mkdir -p /root/.ssh ; \
  dropbearkey -t ed25519 -f /root/.ssh/id_dropbear ; \
  reboot"
rm -rf ${WORK_DIR}

Configure Router Wireless

ssh root@${EDGE_ROUTER} "opkg update ; \
  opkg install wipefs ip-full procps-ng-ps bind-server bind-tools bash shadow uhttpd sfdisk rsync resize2fs wget block-mount ; \
  echo 'src/gz OpenWrt https://downloads.openwrt.org/snapshots/packages/arm_cortex-a7/packages' >> /etc/opkg/customfeeds.conf ; \
  opkg update ; \
  opkg install haproxy"
/etc/init.d/gl_nas_diskmanager disable
/etc/init.d/gl_nas_diskmanager stop
/etc/init.d/gl_nas_sys disable
/etc/init.d/gl_nas_sys stop
/etc/init.d/gl_nas_sys_dl disable
/etc/init.d/gl_nas_sys_dl stop
/etc/init.d/gl_nas_sys_up disable
/etc/init.d/gl_nas_sys_up stop
rm -rf /etc/hotplug.d/block/30-mount
rm -rf /etc/hotplug.d/block/31-mount

wipefs -af /dev/mmcblk0
echo "/dev/mmcblk0p1 : start=1, type=83" > /tmp/part.info
sfdisk --no-reread -f /dev/mmcblk0 < /tmp/part.info
rm /tmp/part.info
mkfs.ext4 /dev/mmcblk0p1
mkdir -p /usr/local
PART_UUID=$(block info /dev/mmcblk0p1 | cut -d\" -f2)
MOUNT=$(uci add fstab mount)
uci set fstab.${MOUNT}.target=/usr/local
uci set fstab.${MOUNT}.uuid=${PART_UUID}
uci set fstab.${MOUNT}.enabled=1
uci commit fstab
block mount

sed -i "s|listen 80|listen 10.11.12.1:80|g" /etc/nginx/conf.d/gl.conf
sed -i "s|listen 443|listen 10.11.12.1:443|g" /etc/nginx/conf.d/gl.conf
sed -i "/listen \[::\]:80/d" /etc/nginx/conf.d/gl.conf
sed -i "/listen \[::\]:443/d" /etc/nginx/conf.d/gl.conf
/etc/init.d/nginx restart
opkg install make git-http

Nginx Config

stream {
    upstream okd_6443 {
        server 10.11.12.200:6443 max_fails=3 fail_timeout=5s;
        server 10.11.12.201:6443 max_fails=3 fail_timeout=5s;
        server 10.11.12.202:6443 max_fails=3 fail_timeout=5s;
    }
    server {
        listen     6443;
        proxy_pass okd_6443;
    }

}